| commit | 970139afb4d5e1c11ecc812dabd0a0834b21b279 | [log] [tgz] |
|---|---|---|
| author | Tiger Yu <tfyu@codeaurora.org> | Thu Feb 01 17:03:49 2018 +0800 |
| committer | Anjaneedevi Kapparapu <akappara@codeaurora.org> | Wed Mar 14 15:42:02 2018 +0530 |
| tree | 8681ffed50dbf5f55191aa31380f40b48b038211 | |
| parent | 914dfad24ad854c28e84721af0dce33def0eb2e3 [diff] |
qcacld-2.0: Fix potential buffer overflow htt_t2h_msg_handler Currently variable "tid" is from message, which is used directly as array size which causes buffer over-write. To address this issue add check for the array size in the ol_rx_delba_handler & ol_rx_pn_ind_handler. Change-Id: I39e5d9c5315a2bf9f34a65651025a1d8fc919c28 CRs-Fixed: 2178818